Hi Michael, On Aug 10, 2023, at 6:11 PM, Michael Hall <mik3h...@gmail.com<mailto:mik3h...@gmail.com>> wrote:
On Aug 10, 2023, at 6:35 PM, Michael Hall <mik3h...@gmail.com<mailto:mik3h...@gmail.com>> wrote: On Aug 10, 2023, at 6:21 PM, Alexander Matveev <almat...@openjdk.org<mailto:almat...@openjdk.org>> wrote: - Fixed tests by checking that all app bundles are signed and by checking how they signed ad-hoc vs actual certificate. How is ad-hoc signing done? If it’s this, I guess I got it https://developer.apple.com/documentation/security/seccodesignatureflags/1397793-adhoc Yes, this is how it is done. I assume done with jpackage by indicating something like —mac-sign only? If wrong feel free to correct. No, it is always done if —mac-sign is NOT specified and we doing ad-hoc signing on app bundle only. PKG will not be ad-hoc signed. If —mac-sign is provided we will use certificate provided with —mac-sign to sign app image and PKG as before. Thanks, Alexander
